Sources

JPCERT/CCブログ英語版

Tempted to Classifying APT Actors: Practical Challenges of Attribution in the Case of Lazarus’s Subgroup

JPCERT/CCブログ英語版

Exploit Development: Investigating Kernel Mode Shadow Stacks on Windows

Security Researchers: Connor McGarr

Windows Internals: Dissecting Secure Image Objects - Part 1

Security Researchers: Connor McGarr

Exploit Development: No Code Execution? No Problem! Living The Age of VBS, HVCI, and Kernel CFG

Security Researchers: Connor McGarr

知道创宇

让一个 Git 项目丢弃之前的提交历史，只保留当前版本并将其作为最新版

体验盒子

解决Cursor在免费订阅期间出现以下提示的问题: You’ve reached your trial request limit. / Too many free trial accounts used on this machine. Please upgrade to pro

体验盒子

CVE-2007-2401 | Apple Mac OS X up to 10.4.8 WebCore setRequestHeader cross site scripting (VU#845708 / EDB-30228)

Vuldb Updates

CVE-2012-6045 | Ramui Ramui Forum 1.0 Query cross site scripting (EDB-37138 / XFDB-75440)

Vuldb Updates

CVE-2021-47119 | Linux Kernel up to 5.10.42/5.12/5.12.9 ext4 kill_bdev memory allocation (01d349a481f0/1385b23396d5/afd09b617db3 / Nessus ID 233837)

Vuldb Updates

Fake Zoom Ends in BlackSuit Ransomware

The DFIR Report

Confluence Exploit Leads to LockBit Ransomware

The DFIR Report

Cobalt Strike and a Pair of SOCKS Lead to LockBit Ransomware

The DFIR Report

DVWA - Brute Force (High Level) - Anti-CSRF Tokens

g0tmi1k

DVWA - Brute Force (Medium Level) - Time Delay

g0tmi1k

DVWA Brute Force (Low Level) - HTTP GET Form [Hydra, Patator, Burp]

g0tmi1k

CVE-2024-31214 & CVE-2024-24809: Traccar 5 Remote Code Execution Vulnerabilities

Exploit PoC

Showcase.apk Exploit PoC: Remote Code Execution Vulnerability on Google Pixel Devices

Exploit PoC

ServiceNow Exploit PoC: CVE-2024-4879, CVE-2024-5178 and CVE-2024-5217

Exploit PoC

Sources

JPCERT/CCブログ英語版

JSAC2025 -Workshop & Lightning Talk-

JSAC2025 -Day 2-

Tempted to Classifying APT Actors: Practical Challenges of Attribution in the Case of Lazarus’s Subgroup

Security Researchers: Connor McGarr

Exploit Development: Investigating Kernel Mode Shadow Stacks on Windows

Windows Internals: Dissecting Secure Image Objects - Part 1

Exploit Development: No Code Execution? No Problem! Living The Age of VBS, HVCI, and Kernel CFG

知道创宇

体验盒子

让一个 Git 项目丢弃之前的提交历史，只保留当前版本并将其作为最新版

解决Cursor在免费订阅期间出现以下提示的问题: You’ve reached your trial request limit. / Too many free trial accounts used on this machine. Please upgrade to pro

解决：could not launch ‘sdk-path/../emulator/qemu/darwin-x86_64/qemu-system-i38

NOSEC 安全讯息平台 - 漏洞预警

【漏洞通报】瑞友天翼应用虚拟化系统远程代码执行漏洞

【安全通报】Weblogic 远程代码执行漏洞（CVE-2023-21931...

【漏洞预警】MinIO 敏感信息泄露漏洞（CVE-2023-28432）

Sigma_HQ - Medium

Introducing Sigma Specification v2.0

Introducing Sigma Filters

Introducing Sigma Correlations

Vuldb Updates

CVE-2007-2401 | Apple Mac OS X up to 10.4.8 WebCore setRequestHeader cross site scripting (VU#845708 / EDB-30228)

CVE-2012-6045 | Ramui Ramui Forum 1.0 Query cross site scripting (EDB-37138 / XFDB-75440)

CVE-2021-47119 | Linux Kernel up to 5.10.42/5.12/5.12.9 ext4 kill_bdev memory allocation (01d349a481f0/1385b23396d5/afd09b617db3 / Nessus ID 233837)

The DFIR Report

Fake Zoom Ends in BlackSuit Ransomware

Confluence Exploit Leads to LockBit Ransomware

Cobalt Strike and a Pair of SOCKS Lead to LockBit Ransomware

g0tmi1k

DVWA - Brute Force (High Level) - Anti-CSRF Tokens

DVWA - Brute Force (Medium Level) - Time Delay

DVWA Brute Force (Low Level) - HTTP GET Form [Hydra, Patator, Burp]

Exploit PoC

CVE-2024-31214 & CVE-2024-24809: Traccar 5 Remote Code Execution Vulnerabilities

Showcase.apk Exploit PoC: Remote Code Execution Vulnerability on Google Pixel Devices

ServiceNow Exploit PoC: CVE-2024-4879, CVE-2024-5178 and CVE-2024-5217

Sources

JPCERT/CCブログ 英語版

Security Researchers: Connor McGarr

知道创宇

体验盒子

NOSEC 安全讯息平台 - 漏洞预警

Sigma_HQ - Medium

Vuldb Updates

The DFIR Report

g0tmi1k

Exploit PoC

Managed ad

JPCERT/CCブログ英語版